citrix.desd.k12.or.us
Issued by RapidSSL SHA256 CA - G3
About this certificate
This digital certificate with serial number 07:3a:1c was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=citrix.desd.k12.or.us,OU=GT26861476+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 07:3a:1cSerial Number (int): 473628
Serial Number lenght: 19 bits, 3 octets
SubjectKeyId:
AuthorityKeyId: c3:9c:f3:fc:d3:46:08:34:bb:ce:46:7f:a0:7c:5b:f3:e2:08:cb:59
Fingerprint (sha1): 42:92:9c:a8:a2:40:e0:d9:80:de:82:43:1b:aa:6c:2c:3a:38:b9:0d
Fingerprint (sha256): bf:59:36:c5:9d:24:62:65:e3:e2:46:5b:e1:9a:4f:15:69:a5:dc:f3:a7:66:3b:71:4d:bf:de:1c:93:19:fd:03
Issuing Certificate URL: http://gv.symcb.com/gv.crt
Revocation information
OCSP Server: http://gv.symcd.comCRL Distribution Point: http://gv.symcb.com/gv.crl
Check the revocation status for certificate citrix.desd.k12.or.us
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for citrix.desd.k12.or.us
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
citrix.desd.k12.or.us
Other certificates including the domain name desd.k12.or.us
(limited to 100 certificates)
mail.desd.k12.or.us
*.desd.k12.or.us
wlc2auth.desd.k12.or.us
remote.desd.k12.or.us
*.mail.desd.k12.or.us
acs.desd.k12.or.us
*.desd.k12.or.us
remote.desd.k12.or.us
ad-fs.desd.k12.or.us
express-e.desd.k12.or.us
auth.desd.k12.or.us
remote.desd.k12.or.us
*.desd.k12.or.us
*.desd.k12.or.us
express-e.desd.k12.or.us
acs.desd.k12.or.us
remote.desd.k12.or.us
remote.desd.k12.or.us
desd-adfs.desd.k12.or.us
nx.desd.k12.or.us
ad-fs.desd.k12.or.us
*.desd.k12.or.us
*.desd.k12.or.us
citrix.desd.k12.or.us
*.mail.desd.k12.or.us
*.desd.k12.or.us
nx.desd.k12.or.us
ad-fs.desd.k12.or.us
nx.desd.k12.or.us
acs.desd.k12.or.us
citrix.desd.k12.or.us
sis.desd.k12.or.us
citrix.desd.k12.or.us
sharepoint.desd.k12.or.us
*.desd.k12.or.us
wlc2auth.desd.k12.or.us
remote.desd.k12.or.us
*.mail.desd.k12.or.us
acs.desd.k12.or.us
*.desd.k12.or.us
remote.desd.k12.or.us
ad-fs.desd.k12.or.us
express-e.desd.k12.or.us
auth.desd.k12.or.us
remote.desd.k12.or.us
*.desd.k12.or.us
*.desd.k12.or.us
express-e.desd.k12.or.us
acs.desd.k12.or.us
remote.desd.k12.or.us
remote.desd.k12.or.us
desd-adfs.desd.k12.or.us
nx.desd.k12.or.us
ad-fs.desd.k12.or.us
*.desd.k12.or.us
*.desd.k12.or.us
citrix.desd.k12.or.us
*.mail.desd.k12.or.us
*.desd.k12.or.us
nx.desd.k12.or.us
ad-fs.desd.k12.or.us
nx.desd.k12.or.us
acs.desd.k12.or.us
citrix.desd.k12.or.us
sis.desd.k12.or.us
citrix.desd.k12.or.us
sharepoint.desd.k12.or.us
Certificate
The complete raw certificate details for citrix.desd.k12.or.us in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErTCCA5WgAwIBAgIDBzocMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMSAwHgYDVQQDExdSYXBpZFNTTCBTSEEy NTYgQ0EgLSBHMzAeFw0xNTA5MjcxMDE3MzlaFw0xODA5MjgyMDU3MDJaMIGZMRMw EQYDVQQLEwpHVDI2ODYxNDc2MTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNv bS9yZXNvdXJjZXMvY3BzIChjKTE1MS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBW YWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEeMBwGA1UEAxMVY2l0cml4LmRlc2QuazEy Lm9yLnVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Nr/KQFqoqKl PBu1HrhqLIQt4nGs3g1XbUmsYK9EB5FUTYDlAtCzYp/sjjbw3hn0xYuG27fTaj1c HBq4VEAa3V+gmJKa2WS5O1gZlQn5yroPExh80vYQN8o3OY5+w/w8QPogtOVsmunH jxx21A/jTgeKe3FQ0hU796j8Ar2lPJ9pR9T2ErLvDK+yXBX1T+tlAvN20z9cW2qI Kz3+s/cM6jG+bmGGZacuQJLwkz68ec38uNCvzYTlzT9tvnBcO+uC6Lg5kc0U4QOH cIl8PSCtS9JZrVpWtjY8Vg5EQwMcwttF1adv0Yc6R+Lln0GSPge0RkULbjasb1HX qh2L8PYGWwIDAQABo4IBTTCCAUkwHwYDVR0jBBgwFoAUw5zz/NNGCDS7zkZ/oHxb 8+IIy1kwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ3Yuc3lt Y2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vZ3Yuc3ltY2IuY29tL2d2LmNydDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCAG A1UdEQQZMBeCFWNpdHJpeC5kZXNkLmsxMi5vci51czArBgNVHR8EJDAiMCCgHqAc hhpodHRwOi8vZ3Yuc3ltY2IuY29tL2d2LmNybDAMBgNVHRMBAf8EAjAAMEEGA1Ud IAQ6MDgwNgYGZ4EMAQIBMCwwKgYIKwYBBQUHAgEWHmh0dHBzOi8vd3d3LnJhcGlk c3NsLmNvbS9sZWdhbDANBgkqhkiG9w0BAQsFAAOCAQEAgxwCIhXpMLjwtpi2ySHT wHaPr0AZpa1v8Li3mVDfqaBbbxru+EInzv4gqrT3RSx97zqkwb9P0FFmNQEfT2v2 RBaensWroQ4sww0ztSaGC5F1u1FaA+M0BaMb9Al79kDMsUj0XIw+LJSkPRQhCqFn RmGXwYhXYx9fZ5V0OVfIHDbNkbmpb5iL++2G5CAb/+JkurUVy5jviF+MmZukJ93K NnMrn2jevsgVJgsq4EcfC1/a261bCjk5RDYLuPLUKGcd5Eji2PD3OP5I+PrwEmfq bTALYo3A7PKO0f2IFEyMj80y7bpVqogm4E7j3QpA/h2yTMJRwZbuRlbxw2mstRw5 Fw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Nr/KQFqoqKlPBu1Hrhq LIQt4nGs3g1XbUmsYK9EB5FUTYDlAtCzYp/sjjbw3hn0xYuG27fTaj1cHBq4VEAa 3V+gmJKa2WS5O1gZlQn5yroPExh80vYQN8o3OY5+w/w8QPogtOVsmunHjxx21A/j TgeKe3FQ0hU796j8Ar2lPJ9pR9T2ErLvDK+yXBX1T+tlAvN20z9cW2qIKz3+s/cM 6jG+bmGGZacuQJLwkz68ec38uNCvzYTlzT9tvnBcO+uC6Lg5kc0U4QOHcIl8PSCt S9JZrVpWtjY8Vg5EQwMcwttF1adv0Yc6R+Lln0GSPge0RkULbjasb1HXqh2L8PYG WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 473628 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-27 10:17:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-28 20:57:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT26861476' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'citrix.desd.k12.or.us' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27375465179918025865140072938677442822288262299370723678897625209806267279714003836412666931339970378477733340997964110387977954624149824403138090001452836175005766161036864427503217690205965767561961054593924703526968444862413203891511388292904290132232182115059630403325746690323119687819818060619676694418172039857093748769137828814910536022468515843517581014246444866290500798608326261540470070742188530246246993487231278348429077187711936322308895924721429462629811536237314328149044461213173972524420972342866863617233339561169126767335052955570847476037595657215879500228016076189821916446144962851414453126747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39cf3fcd3460834bbce467fa07c5bf3e208cb59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'citrix.desd.k12.or.us' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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